From owner-cvs-src Tue Mar 4 13:30:15 2003 Delivered-To: cvs-src@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id ADCB937B401; Tue, 4 Mar 2003 13:30:05 -0800 (PST) Received: from HAL9000.homeunix.com (12-233-57-224.client.attbi.com [12.233.57.224]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0795943FCB; Tue, 4 Mar 2003 13:30:02 -0800 (PST) (envelope-from das@FreeBSD.ORG) Received: from HAL9000.homeunix.com (localhost [127.0.0.1]) by HAL9000.homeunix.com (8.12.6/8.12.5) with ESMTP id h24LTwLT041040; Tue, 4 Mar 2003 13:29:58 -0800 (PST) (envelope-from das@FreeBSD.ORG) Received: (from das@localhost) by HAL9000.homeunix.com (8.12.6/8.12.5/Submit) id h24LTvba041039; Tue, 4 Mar 2003 13:29:57 -0800 (PST) (envelope-from das@FreeBSD.ORG) Date: Tue, 4 Mar 2003 13:29:57 -0800 From: David Schultz To: "Andrey A. Chernov" Cc: Mike Barcroft , src-committers@FreeBSD.ORG, cvs-src@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/lib/libutil login.conf.5 Message-ID: <20030304212957.GA40993@HAL9000.homeunix.com> Mail-Followup-To: "Andrey A. Chernov" , Mike Barcroft , src-committers@FreeBSD.ORG, cvs-src@FreeBSD.ORG, cvs-all@FreeBSD.ORG References: <200303030509.h2359Ofb036507@repoman.freebsd.org> <20030303095422.GA20923@nagual.pp.ru> <20030303101518.GA8214@HAL9000.homeunix.com> <20030303103819.GA22044@nagual.pp.ru> <20030303115011.GA8705@HAL9000.homeunix.com> <20030303120707.GA24280@nagual.pp.ru> <20030303122609.GA9305@HAL9000.homeunix.com> <20030303130643.GA25214@nagual.pp.ru> <20030303112151.E49156@espresso.bsdmike.org> <20030303164828.GA28881@nagual.pp.ru> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030303164828.GA28881@nagual.pp.ru> Sender: owner-cvs-src@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Thus spake Andrey A. Chernov : > On Mon, Mar 03, 2003 at 11:21:51 -0500, Mike Barcroft wrote: > > > > If we do this, we need to say "(Not supported by any base system > > utilities.)" next to each unsupported option. Otherwise you get users > > that are confused about login.conf not working as expected on their > > systems. > > Yes, it is the way I suggest too (instead of current removing). I gather from your previous email that you basically want an authoritative list of yet-to-be-supported capabilities, so that if third parties implement them, they will make them conform to the list. While I don't agree that this sort of thing belongs in the documentation, I don't have a problem with the idea, as long as it is very clear that they are not supported, and I certainly don't want to argue about it. What do you think about the following patch? Index: lib/libutil/login.conf.5 =================================================================== RCS file: /cvs/src/lib/libutil/login.conf.5,v retrieving revision 1.45 diff -u -r1.45 login.conf.5 --- lib/libutil/login.conf.5 3 Mar 2003 05:09:24 -0000 1.45 +++ lib/libutil/login.conf.5 4 Mar 2003 21:17:54 -0000 @@ -334,6 +334,58 @@ have been superseded by the .Xr pam_passwdqc 8 PAM module. +.Sh RESERVED CAPABILITIES +The following capabilities are reserved for the purposes indicated and +may be supported by third-party software. +They are not implemented in the base system. +.Bl -column host.accounted indent indent +.It Sy "Name Type Notes Description +.It "accounted bool false Enable session time accounting for all users +in this class. +.It "autodelete time Time after expiry when account is auto-deleted. +.It "bootfull bool false Enable 'boot only if ttygroup is full' strategy +when terminating sessions. +.It "daytime time Maximum login time per day. +.It "expireperiod time Time for expiry allocation. +.It "graceexpire time Grace days for expired account. +.It "gracetime time Additional grace login time allowed. +.It "host.accounted list List of remote host wildcards from which +login sessions will be accounted. +.It "host.exempt list List of remote host wildcards from which +login session accounting is exempted. +.It "idletime time Maximum idle time before logout. +.It "monthtime time Maximum login time per month. +.It "passwordtime time Used by +.Xr passwd 1 +to set next password expiry date. +.It "refreshtime time New time allowed on account refresh. +.It "refreshperiod str How often account time is refreshed. +.It "sessiontime time Maximum login time per session. +.It "sessionlimit number Maximum number of concurrent +login sessions on ttys in any group. +.It "ttys.accounted list List of ttys and ttygroups for which +login accounting is active. +.It "ttys.exempt list List of ttys and ttygroups for which login accounting +is exempt. +.It "warntime time Advance notice for pending out-of-time. +.It "weektime time Maximum login time per week. +.El +.Pp +The +.Em ttys.accounted +and +.Em ttys.exempt +fields operate in a similar manner to +.Em ttys.allow +and +.Em ttys.deny +as explained +above. +Similarly with the +.Em host.accounted +and +.Em host.exempt +lists. .Sh SEE ALSO .Xr cap_mkdb 1 , .Xr login 1 , To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-src" in the body of the message